At Grey, protecting information is essential for our business, customers, and partners. We are fully committed to safeguarding sensitive information in compliance with all relevant laws and regulations.

To support reliable, uninterrupted service, we’ve implemented an Information Security Management System (ISMS) aligned with ISO/IEC 27001 standards. This system is core to Grey’s commitment to operational excellence, designed to ensure the confidentiality, integrity, and availability of information across our organization.

Our Commitment:

• Setting clear ISMS objectives and dedicating resources to achieve them.
• Complying with all legal and regulatory requirements, including ISO 27001:2022.
• Protecting critical assets to prevent disruptions and protect stakeholder trust.
• Providing robust security training to all employees to foster awareness and compliance.
• Continuously updating and strengthening our ISMS to maintain ISO 27001 certification and meet evolving standards.
• Regularly reviewing policies and procedures to ensure effectiveness and relevance.
• Using a proactive risk management framework to identify and mitigate information security risks.

Grey ensures all employees are well-informed and trained on our security practices, and policies are made accessible to partners and stakeholders as needed. We review these policies regularly to stay responsive to changes in regulations, business needs, and other relevant factors.

‍